Posted 08/06/08 at 09:55:14 AM by Pulkit Chandna

Symantec has issued yet another warning related to a vulnerability in MS Access that was acknowledged by Microsoft last month. Symantec has warned that Internet Explorer 6 is more vulnerable to this threat than subsequent versions. It had earlier unearthed an update to the diabolical Neosploit kit that has made it easier for even neophyte hackers to exploit the chink in the MS Access armor.
There is still no news of a patch to fix the Snapshot Viewer ActiveX control that comes bundled with MS Access. This ActiveX control is being exploited by cyber interlopers to wrest control of computers. Symantec has advised users to set three kill bits for the Snapshot Viewer ActiveX control to prevent it from being activated.
Posted 07/14/08 at 06:19:31 PM by Pulkit Chandna
Last week, Microsoft had warned that hackers were exploiting a flaw in the Snapshot Viewer ActiveX control which comes bundled with all versions of Microsoft Access save for MS Acess 2007. Now Symantec has uncovered an update to the malicious Neosploit Toolkit that will allow even fledgling hackers to exploit the abovementioned loophole in MS Access making attacks more rampant.
Attackers are exploiting the threat using specially designed websites that hideously download malicious code. Since the ActiveX control bears Microsoft's digital signature, those users who have rated MS to be a trustworthy software publisher in their IE settings might very quietly have their systems compromised
Microsoft hasn’t come up with a fix for this bug yet. Though Microsoft says that attacks are targeted and not widespread, you are advised to breeze through the terse list of suggested actions posted by Microsoft and mitigate the risk.






